smart_pointers_class_member.md

Smart Pointers as Class Members

When a class owns heap resources, smart-pointer members give you automatic cleanup, exception safety, and the right copy/move behavior — for free. The trick is picking the right pointer for the ownership story.

• 1. Quick Decision Guide
• 2. unique_ptr Member
  • 2.1. The default for owned resources
  • 2.2. Rule of Zero — let the compiler do it
  • 2.3. Polymorphic ownership
• 3. The PIMPL Idiom
  • 3.1. Why PIMPL
  • 3.2. The two-file pattern
  • 3.3. The "destructor in header" gotcha
• 4. shared_ptr Member
  • 4.1. When it's actually appropriate
  • 4.2. Thread safety: pointer vs pointee
• 5. weak_ptr Member
  • 5.1. Breaking parent–child cycles
  • 5.2. Cached lookups
• 6. Common Pitfalls
• 7. See Also

---

1. Quick Decision Guide

Situation	Use
Class owns one heap object exclusively	std::unique_ptr<T>
Class hides its implementation in a .cpp (PIMPL)	std::unique_ptr<Impl>
Class owns a polymorphic object (Base* may be Derived)	std::unique_ptr<Base>
Resource is genuinely co-owned with other code	std::shared_ptr<T>
Class observes a shared_ptr-managed object without owning it	std::weak_ptr<T>
Class needs to know of an object but never use it	raw pointer or reference

If you're using shared_ptr because you're not sure who should own the resource — stop and figure it out. The default answer is unique_ptr.

---

2. unique_ptr Member

2.1. The default for owned resources

#include <memory>

class Engine {
    std::unique_ptr<Carburetor> carb_;
public:
    Engine() : carb_(std::make_unique<Carburetor>()) {}
    void rev() { carb_->open(); }
};

That's the entire pattern. Construction creates the carburetor; destruction destroys it; the engine cannot leak it.

Initialize unique_ptr members in the constructor initializer list, not the body. Initializer-list construction is exception-safe: if a later member throws during init, already-constructed unique_ptrs are properly destroyed.

2.2. Rule of Zero — let the compiler do it

A unique_ptr member makes the enclosing class automatically move-only with the right semantics for free. You don't have to write any of the special members:

class Engine {
    std::unique_ptr<Carburetor> carb_;
public:
    Engine() : carb_(std::make_unique<Carburetor>()) {}

    // Compiler-generated:
    // ❌ copy ctor      — deleted (unique_ptr is move-only)
    // ❌ copy assign    — deleted
    // ✅ move ctor      — defaulted, transfers carb_
    // ✅ move assign    — defaulted, transfers carb_
    // ✅ destructor     — defaulted, releases carb_
};

Don't write =delete and =default boilerplate unless you're being explicit for a reason. The compiler does the right thing automatically when all members behave correctly.

If you need the class to be copyable, give it an explicit copy constructor that deep-copies the resource:

class Engine {
    std::unique_ptr<Carburetor> carb_;
public:
    Engine()
      : carb_(std::make_unique<Carburetor>()) {}

    Engine(const Engine& other)
      : carb_(std::make_unique<Carburetor>(*other.carb_)) {}   // deep copy

    Engine& operator=(const Engine& other) {
        carb_ = std::make_unique<Carburetor>(*other.carb_);
        return *this;
    }

    // move ops still defaulted — copy/move-and-swap could simplify further
    Engine(Engine&&)            = default;
    Engine& operator=(Engine&&) = default;
};

2.3. Polymorphic ownership

A class that owns "some Renderer" without knowing the concrete type:

class Window {
    std::unique_ptr<Renderer> renderer_;          // Renderer is abstract
public:
    explicit Window(std::unique_ptr<Renderer> r)
      : renderer_(std::move(r)) {}

    void draw() { renderer_->render(); }          // virtual dispatch
};

// elsewhere
auto w = Window(std::make_unique<VulkanRenderer>());

Two requirements that bite people:

• Renderer must have a virtual destructor, otherwise ~Window() won't call ~VulkanRenderer().
• The factory pattern (std::make_unique<Concrete>() returned as unique_ptr<Base>) only works because of unique_ptr's implicit conversion from unique_ptr<Derived> to unique_ptr<Base> — which itself requires a virtual destructor for safety.

---

3. The PIMPL Idiom

PIMPL (Pointer to IMPLementation) is the canonical use of std::unique_ptr as a member. It's how you keep a class's implementation completely out of its public header.

3.1. Why PIMPL

Every #include of a class's header drags in everything that header transitively includes. PIMPL solves three problems at once:

1. Compile-time decoupling — change the implementation, only the .cpp recompiles, not every translation unit that uses the class.
2. Stable ABI — adding a private member or changing internal types doesn't change the size or layout of the public class. Critical for shared libraries.
3. Hide expensive headers — the public header doesn't need to #include <thread>, <network/socket>, or your big template library.

3.2. The two-file pattern

// widget.h
#pragma once
#include <memory>

class Widget {
public:
    Widget();
    ~Widget();                          // declared, defined in .cpp (see §3.3)
    Widget(Widget&&) noexcept;
    Widget& operator=(Widget&&) noexcept;

    void do_thing();

private:
    struct Impl;                        // forward declaration only
    std::unique_ptr<Impl> impl_;        // size of Widget = sizeof(unique_ptr) ≈ ptr
};

// widget.cpp
#include "widget.h"
#include <vector>
#include <thread>
#include "internal/heavy_thing.h"

struct Widget::Impl {                   // full definition, only the .cpp sees it
    std::vector<int>     data;
    std::thread          worker;
    HeavyThing           thing;
};

Widget::Widget()
  : impl_(std::make_unique<Impl>()) {}

Widget::~Widget()                = default;   // defined here, where Impl is complete
Widget::Widget(Widget&&) noexcept = default;
Widget& Widget::operator=(Widget&&) noexcept = default;

void Widget::do_thing() {
    impl_->thing.use(impl_->data);
}

The header has no clue what's inside Impl. Anyone using Widget doesn't pull in <vector>, <thread>, or heavy_thing.h.

3.3. The "destructor in header" gotcha

// widget.h
class Widget {
    struct Impl;
    std::unique_ptr<Impl> impl_;
public:
    Widget();
    // ⚠️ defaulted destructor in the header
};

This won't compile. unique_ptr<Impl>'s destructor needs to call delete impl_, which needs the complete type of Impl — but in the header, Impl is only forward-declared.

Fix: declare the destructor in the header, define it in the .cpp after Impl is fully defined:

// widget.h
~Widget();                              // declared

// widget.cpp
Widget::~Widget() = default;            // defined here, where Impl is complete

Same story for the move constructor and move assignment operator if you want them.

---

4. shared_ptr Member

4.1. When it's actually appropriate

A shared_ptr member is right when the class is one of several co-owners of the resource — i.e. the resource may legitimately outlive the class instance.

class CacheEntry {
    std::shared_ptr<Buffer> buf_;       // also held by other entries pointing
                                        // at the same underlying buffer
public:
    explicit CacheEntry(std::shared_ptr<Buffer> b) : buf_(std::move(b)) {}
};

If the buffer's only owner is CacheEntry, this should be unique_ptr<Buffer> instead. Using shared_ptr here just to avoid thinking about ownership is the most common smart-pointer mistake. See shared_ptr_use_cases.md for cases where shared ownership is genuinely the right model.

4.2. Thread safety: pointer vs pointee

A subtle but important distinction:

Operation	Thread-safe?
Two threads each modify their own copy of a shared_ptr to the same object	✅ — refcount is atomic
Two threads modify the same shared_ptr variable	❌ — that's a data race; use std::atomic<std::shared_ptr<T>> (C++20)
Two threads modify the pointee through a shared_ptr	❌ — shared_ptr doesn't synchronize the object, only the refcount

class Service {
    std::shared_ptr<Config> cfg_;
public:
    // If cfg_->reload() mutates the Config, you still need a mutex around
    // the Config — sharing the pointer doesn't make the pointee thread-safe.
    void reload() {
        std::lock_guard lock(cfg_->mu_);
        cfg_->reload();
    }
};

Confusing the two is a recurring bug. The pointer-counting machinery doesn't extend to the data.

---

5. weak_ptr Member

A weak_ptr is never the primary owner. It's an observer — used to break cycles or to cache a reference without extending lifetime.

5.1. Breaking parent–child cycles

class Tree {
    struct Node {
        std::vector<std::shared_ptr<Node>> children;
        std::weak_ptr<Node>                parent;       // ✅ weak — no cycle
    };
    std::shared_ptr<Node> root_ = std::make_shared<Node>();
};

If parent were a shared_ptr, parent and child would each hold a strong ref to the other, the refcounts would never reach zero, and the tree would leak. With weak_ptr, the parent owns its children; children only observe their parent.

To traverse upward: if (auto p = node->parent.lock()) { ... }.

5.2. Cached lookups

class Resolver {
    std::weak_ptr<Cache> cache_;
public:
    std::shared_ptr<Cache> get_cache() {
        if (auto c = cache_.lock()) return c;            // still alive — reuse
        auto fresh = std::make_shared<Cache>(load());
        cache_ = fresh;
        return fresh;
    }
};

The cache lives only as long as some caller holds onto it. Once everyone is done, the next call pays the rebuild cost. Saves memory at the cost of recomputation.

---

6. Common Pitfalls

Writing =default/=delete boilerplate by hand

class Bad {
    std::unique_ptr<Resource> r_;
public:
    Bad(const Bad&) = delete;            // ⚠️ noise — already deleted by unique_ptr
    Bad& operator=(const Bad&) = delete; // ⚠️ noise
    Bad(Bad&&) = default;                // ⚠️ noise — already defaulted
    Bad& operator=(Bad&&) = default;     // ⚠️ noise
    ~Bad() = default;                    // ⚠️ noise
};

The compiler generates exactly these. Writing them yourself is "Rule of Zero" violations and just adds maintenance.

Sharing a class member with enable_shared_from_this via this

class Worker {
    std::shared_ptr<Worker> hand_off() {
        return std::shared_ptr<Worker>(this);   // ⚠️ creates a SECOND control block
    }
};

Use std::enable_shared_from_this.

Using a shared_ptr member that doesn't need to be shared

The single biggest source of unnecessary atomic refcount traffic in modern C++ codebases. If your class is the sole owner, use unique_ptr.

Returning a raw pointer from a smart-pointer member without documenting lifetime

Resource* get() { return r_.get(); }    // ⚠️ may dangle the moment *this is destroyed

If callers must hold onto the result, return Resource& (signaling non-null and bound to the class lifetime) or hand them a weak_ptr if the resource is shared_ptr-owned.

Holding a unique_ptr<Base> to a derived type without a virtual destructor

struct Base { /* no virtual ~Base() */ };
struct Derived : Base { ~Derived() { /* won't run */ } };

std::unique_ptr<Base> p = std::make_unique<Derived>();   // ⚠️ undefined behavior at destruction

If you store a polymorphic type via a base-class smart pointer, the base needs a virtual destructor.

---

7. See Also

• smart_pointers.md — the underlying types and their guarantees.
• passing_returning_smart_pointers_to_from_functions.md — function-signature rules.
• shared_ptr_use_cases.md — twelve patterns where shared ownership is genuinely the right tool.
• pointers.md — raw pointers, dangling, AddressSanitizer.